X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - SECURITYAFFAIRS.CO - A La Une - 05/01/2025 19:06

Nuclei flaw allows signature bypass and code execution

A vulnerability in Nuclei, an open-source vulnerability scanner, could allow attackers to bypass signature checks and execute malicious code. A high-severity security flaw, tracked as CVE-2024-43405 (CVSS score of 7.4), in the open-source vulnerability scanner ProjectDiscovery’s Nuclei, could allow attackers to bypass signature checks and execute malicious code. The Wiz’s engineering team discovered the vulnerability. The vulnerability […]

Articles similaires

Sorry! Image not available at this time

High-severity MongoDB flaw CVE-2025-14847 could lead to server takeover

itsecuritynews.info - 25/12/2025 11:02

MongoDB addressed a high-severity vulnerability that can be exploited to achieve remote code execution on vulnerable servers. MongoDB addressed a...

Sorry! Image not available at this time

High-severity MongoDB flaw CVE-2025-14847 could lead to server takeover

itsecuritynews.info - 25/12/2025 11:02

MongoDB addressed a high-severity vulnerability that can be exploited to achieve remote code execution on vulnerable servers. MongoDB addressed a...

Sorry! Image not available at this time

New MongoDB Flaw Lets Unauthenticated Attackers Read Uninitialized Memory

itsecuritynews.info - 27/12/2025 08:31

A high-severity security flaw has been disclosed in MongoDB that could allow unauthenticated users to read uninitialized heap memory. The...

Sorry! Image not available at this time

New MongoDB Flaw Lets Unauthenticated Attackers Read Uninitialized Memory

itsecuritynews.info - 27/12/2025 08:31

A high-severity security flaw has been disclosed in MongoDB that could allow unauthenticated users to read uninitialized heap memory. The...

Sorry! Image not available at this time

High-severity MongoDB flaw CVE-2025-14847 could lead to server takeover

securityaffairs.co - 25/12/2025 10:12

MongoDB addressed a high-severity vulnerability that can be exploited to achieve remote code execution on vulnerable servers. MongoDB addressed a...

Sorry! Image not available at this time

New n8n Vulnerability (9.9 CVSS) Lets Authenticated Users Execute System Commands

itsecuritynews.info - 06/Jan 05:31

A new critical security vulnerability has been disclosed in n8n, an open-source workflow automation platform, that could enable an authenticated...

Sorry! Image not available at this time

LangChain core vulnerability allows prompt injection and data exposure

securityaffairs.co - 27/12/2025 18:20

A critical flaw in LangChain Core could allow attackers to steal sensitive secrets and manipulate LLM responses via prompt injection. LangChain Core...

Sorry! Image not available at this time

Ni8mare flaw gives unauthenticated control of n8n instances

securityaffairs.co - 07/Jan 21:15

A critical n8n flaw (CVE-2026-21858, CVSS 10.0), dubbed Ni8mare, allows unauthenticated attackers to fully take over vulnerable instances. Researchers...

Sorry! Image not available at this time

Singapore CSA warns of maximun severity SmarterMail RCE flaw

securityaffairs.co - 31/12/2025 14:23

Singapore’s CSA warns of CVE-2025-52691, a critical SmarterMail flaw enabling unauthenticated remote code execution via arbitrary file upload....

Sorry! Image not available at this time

Singapore CSA warns of maximun severity SmarterMail RCE flaw

securityaffairs.co - 31/12/2025 14:23

Singapore’s CSA warns of CVE-2025-52691, a critical SmarterMail flaw enabling unauthenticated remote code execution via arbitrary file upload....

Les derniers communiqués